Product Catalog (ultimate-product-catalogue) Vulnerabilities in Our Data Set

As of March 24, 2019, our data set has listings for 12 vulnerabilities in the plugin Product Catalog (ultimate-product-catalogue). If used our service you would have already been warned if you we're using a vulnerable version of the plugin. Once you were a paying customer you could also suggest/vote for the plugin to receive a security review from us to have a more complete picture of the security of the plugin.

The types of vulnerabilities we have in our data set for this plugin include:
  • PHP object injection
  • SQL injection
  • arbitrary file upload
  • authenticated SQL injection
  • authenticated settings change
  • cross-site request forgery (CSRF)/SQL injection
  • cross-site request forgery (CSRF)/cross-site scripting (XSS)
  • cross-site request forgery (CSRF)/file upload
  • reflected cross-site scripting (XSS)

Sign up now with a free trial and you can see all the listings of vulnerabilities for all the plugins you use right in your WordPress admin interface.